DeepSource
Dashboard Resources Pricing Discover Directory Log in

Run your first analysis.

Find thousands of code security and quality issues in your codebase, before they end up in production.

Start now

Categories

Configuration-as-code

Latest version

v0.3.1

Updated on

Feb 15, 2023

Issues

188

Read full documentation

Sample configuration 

version = 1

[[analyzers]]
name = "terraform"

Stats

Anti-pattern

7

Bug risk

21

Performance

3

Security

156

Style

1

Issues

View all
Detected password authentication instead of SSH keys TF-AZU005
Security

Passwords can be brute-forced, are prone to human error with possibitlies of weak password creation. Moreover password policies may be frustrating. Using SSH keys reduces the brute force attack vector to significant degrees.
Legacy ABAC permissions are enabled TF-GCP005
Security

In Kubernetes, RBAC is used to grant permissions to resources at the cluster and namespace level. RBAC allows you to define roles with rules containing a set of permissions. RBAC has significant security advantages and is now stable in Kubernetes, hence
Load balancer is exposed to the internet TF-AWS005
Security

Warns against to prevent accidental exposure of internal assets.
Module doesn't comply with Terraform Standard Module Structure TF-L0048
Anti-pattern

Terraform's documentation outlines a Standard Module Structure. A minimal module should have a main.tf, variables.tf, and outputs.tf file. Variable and output blocks should be included in the corresponding file.

To fix this issue: - Move blocks to their conventional files as needed - Create empty files even if no variable or output blocks are defined

An outdated SSL policy is in use by a load balancer TF-AWS010
Security

It is not recommended to use outdated/insecure TLS versions for encryption.